## Description Analyze workflow files. Detect: ``` curl | bash wget | bash chmod +x downloaded files ``` Also detect: ``` permissions: write-all ``` and excessive permissions. ## Why GitHub Actions is a major attack surface.
Description
Analyze workflow files.
Detect:
Also detect:
and excessive permissions.
Why
GitHub Actions is a major attack surface.